Req: Total beginners help - Win Q.
Danny Mayer
mayer at gis.net
Wed Dec 21 18:11:39 UTC 2005
Techie wrote:
> Danny Mayer <mayer at gis.net> wrote in news:do7sm7$28pe$1 at sf1.isc.org:
>
>
>>Tony Schenk wrote:
>>
>>
>>>Techie-
>>>
>>>Would you be willing to post what you've been using that failed?
>>>Although I'm not positive, I think that 1069 error is security related
>>>and may actually not be related to your configuration at all.
>>>
>>>-Tony
>>>
>>
>>No, it means he didn't read his Application event log to find out what
>>was wrong.
>>
>>Danny
>>
>>
>>
>
>
> Correcting myself... Sorry Danny, I'm such a moron sometimes (^^)
> At least I can lugh at myself.
>
> I found out how to get that info and finally am starting to get
> somewhere.
>
> However, it seems very odd that the named.conf file is being loaded, but
> during the parsing of the file, it cannot find the named.root file with
> root server entries which is located in the same directory as the
> named.conf file.
>
> So, for Tony Schenk's request...
>
> The problem is that the paths are not correctly specified somehow and I
> have tried every variation of the ones I can think of, but apparently not
> the correct one.
>
> Below are the config files I am using at this moment for the initial
> test.
>
>
> Also note, the RNDC.KEY is located in "etc" as well, brand spanking new
> made by the std. rndc-confgen -a command.
>
> Also, the setup was done and I assigned a short password to the BIND.
> When I start the named.exe using the dos debug option named.exe -g
> it says it has a parsing error after throwing a fit about not finding the
> file named.root, containing the root server listings.
>
> Excuse the linebreaks below, but if you read this in a text editor of
> choice it probably looks better since I edit most files using notepad
> without wordwrap.
>
>
> ---NAMED.CONF---------------------------------------------------------
> #
> # Requires:
> # named.ca
> # zones/example.com.zone
> # zones/10.0.0.rev
> #
> #########################################################################
> #######
> # Server Configuration
> #
> options {
> # Set the working directory from which all relative paths are based
> # For the win2k default install "C:\WINNT\system32\dns\etc"
> #
> directory "/";
> #I am in the "C:\windows\system32\dns\etc" directory already. / MRJ
>
Think about who the "you" is here. It's not you as the user, it's the
server running as a service. It doesn't have a home directory by
default. If you had put in the directory path it would then look for
everything relative to this directory.
Danny
> # RECURSION - Required for caching servers
> # Default: yes
> # Values : yes, no
> #
> # yes: Attempt to resolve requests we are not authoritative for
> # no : Do not resolve requests we are not authoritative for
> #
> recursion yes;
>
> # ALLOW-RECURSION - Who may use our caching server?
> # Default: any;
> # Values : any, none, (addresslist)
> #
> # any : anybody may use the caching server
> # none : noone may use the caching server
> # address: List of IP addresses that may use the caching server.
> #
> allow-recursion { localhost; localnets; };
>
> # FORWARD - Recommended for caching servers
> # Default: first
> # Values : first, only
> #
> # first: Query "forwarders" first, then resolve request ourself
> # only : Only query the "forwarders" to resolve requests
> #
> #forward first;
>
> # FORWARDERS - Required if "forward" is used
> # Default: (no forwarding)
> # Values : (addresslist)
> #
> # It is recommended that you use your ISP's caching server
> addresses
> # Example: forwarders { 127.0.0.1; 127.0.0.2; }
> #
> #forwarders { };
>
> # QUERY SOURCE - Useful for caching servers behind a firewall
> # Default: address * port *
> # Values : The IP address and port to use as the source of queries
> to other servers
> #
> #query-source address * port 53;
>
> # NOTIFY - Relevant to authoritative servers
> # Default: yes
> # Values : yes, explicit, no
> #
> # yes : Send DNS NOTIFY messages to slave servers in zone NS
> records when zone changes
> # explicit: Only send DNS NOTIFY messages to "also-notify" hosts
> # no : Never automatically send DNS NOTIFY messages
> #
> notify no;
> };
>
> #########################################################################
> #######
> # Logging Configuration
> #
> logging {
> #
> # Define channels for the two log files
> #
> channel query_log {
> severity info;
> print-time yes;
> file "log/query.log" versions 3 size 100M;
> };
> channel activity_log {
> severity info;
> print-time yes;
> print-category yes;
> print-severity yes;
> file "log/activity.log" versions 3 size 100M;
> };
>
> #
> # Send the interesting messages to the appropriate channels
> #
> category queries { query_log; };
>
> category default { activity_log; };
> category xfer-in { activity_log; };
> category xfer-out { activity_log; };
> category notify { activity_log; };
> category security { activity_log; };
>
> category update { activity_log; };
> #category update-security { activity_log; }; # BIND 9.3 only
>
> #
> # Dump all uninteresting messages
> #
> category network { null; };
> category lame-servers { null; };
> };
>
> #########################################################################
> #######
> # Zone Configuration
> #
>
> #
> # Specify the root name servers
> #
> zone "." IN {
> type hint;
>
> #this should be located in "C:\windows\system32\dns\etc" not to mix with
> #all the other zone files. Just my preference / MRJ
>
> file "named.root";
> };
>
> #
> # Configure ourself as the host for example.com
> #
> zone "example.com" IN {
> type master;
> file "zones/example.com.zone";
> };
>
> #
> # Reverse IP mapping for 10.0.0.x
> #
> zone "0.0.10.in-addr.arpa" {
> type master;
> file "zones/10.0.0.rev";
> };
> ---END NAMED.CONF-------------------------------------------------------
>
> --10.0.0.rev CONTENTS---------------------------------------------------
> $TTL 900 ; 900 seconds default record (T)ime (T)o (L)ive
> in cache
>
> ; From sample by SilentRage
> ; http://www.dollardns.net/bind/
>
> @ SOA ns1.example.com. ( ; ns1.example.com is the
> primary server for example.com
> postmaster.example.com. ; contact email for example.com
> is admin at example.com
> 2004041700 ; Serial ID in reverse
> date format
> 21600 ; Refresh interval for
> slave servers
> 1800 ; Retry interval for
> slave servers
> 604800 ; Expire limit for cached
> info on slave servers
> 900 ) ; Minimum Cache TTL in
> zone records
>
> @ NS ns1.example.com. ; ns1.example.com is a
> host for 10.0.0.x
> @ NS ns2.example.com. ; ns2.example.com is a
> host for 10.0.0.x
>
> ;2 PTR ns1.example.com. ; 10.0.0.2 is
> ns1.example.com, with last IP octet 2
> ;2 PTR ns2.example.com. ; 10.0.0.2 is
> ns2.example.com, with last IP octet 2
> 2 PTR mail.example.com. ; 10.0.0.2 is
> mail.example.com, with last IP octet 2
> ;2 PTR www.example.com. ; 10.0.0.2 is
> www.example.com, with last IP octet 2
> ;MRJ NOTE!
> ;COMMENT THE ODD BALS OUT SINCE WE CAN ONLY HAVE ONE PTR RECORD PER
> ENDING OCTET!
> ;IF THERE IS A MAIL SERVER ON IT, USE THAT PRIMARILY FOR PTR TRANSFER
> PROPERLY!
>
> --End 10.0.0.rev CONTENTS------------------------------------------------
>
> --example.com.zone CONTENTS----------------------------------------------
> $TTL 900 ; 900 seconds default record (T)ime (T)o (L)ive in
> cache
>
> ; From sample by SilentRage
> ; http://www.dollardns.net/bind/
>
> @ SOA ns1 ( ; ns1.example.com is the primary server for
> example.com
> postmaster ; contact email for example.com is
> postmaster at example.com
> 2004041700 ; Serial ID in reverse date format
> 21600 ; Refresh interval for slave servers
> 1800 ; Retry interval for slave servers
> 604800 ; Expire limit for cached info on slave
> servers
> 900 ) ; Minimum Cache TTL in zone records
>
> @ NS ns1 ; ns1.example.com is a host for example.com
> @ NS ns2 ; ns2.example.com is a host for example.com
>
> @ A 10.0.0.2 ; example.com's IP address is 10.0.0.2
>
> @ MX 10 mail ; Mail for *@example.com is sent to
> mail.example.com
>
> ns1 A 10.0.0.2 ; ns1.example.com's IP address is 10.0.0.2
> ns2 A 10.0.0.2 ; ns2.example.com's IP address is 10.0.0.2
>
> mail A 10.0.0.2 ; mail.example.com's IP address is 10.0.0.2
>
> www A 10.0.0.2 ; www.example.com's IP address is 10.0.0.2
> --end example.com.zone CONTENTS------------------------------------------
>
>
>
More information about the bind-users
mailing list